From 13a10d43141c29dad61868b451c0c1dca82360de Mon Sep 17 00:00:00 2001
From: Nadezhda Ivanova <nivanova@symas.com>
Date: Mon, 14 Oct 2013 12:38:10 +0300
Subject: s4-samldb: Do not allow deletion of objects with RID < 1000

According to [MS-SAMR] 3.1.5.7 Delete Pattern we should not allow deletion
of security objects with RID < 1000. This patch will prevent deletion of
well-known accounts and groups.

Signed-off-by: Nadezhda Ivanova <nivanova@symas.com>
Reviewed-by:   Andrew Bartlett <abartlet@samba.org>

Autobuild-User(master): Nadezhda Ivanova <nivanova@samba.org>
Autobuild-Date(master): Mon Oct 14 13:31:50 CEST 2013 on sn-devel-104
---
 testdata/samba3/samba3.ldif | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'testdata')

diff --git a/testdata/samba3/samba3.ldif b/testdata/samba3/samba3.ldif
index 76792d09e5..3978777e27 100644
--- a/testdata/samba3/samba3.ldif
+++ b/testdata/samba3/samba3.ldif
@@ -94,10 +94,10 @@ displayName: Backup Operators
 dn: cn=Replicator,ou=Groups,sambaDomainName=TESTS,${BASEDN}
 objectClass: posixGroup
 objectClass: sambaGroupMapping
-gidNumber: 552
+gidNumber: 1052
 cn: Replicator
 description: Netbios Domain Supports file replication in a sambaDomainName
-sambaSID: S-1-5-21-4231626423-2410014848-2360679739-552
+sambaSID: S-1-5-21-4231626423-2410014848-2360679739-1052
 sambaGroupType: 2
 displayName: Replicator
 
-- 
cgit